A Node.js CLI and equivalent JS API to audit the age of installed production npm packages.
A Node.js CLI and equivalent JS API to audit the age of installed production npm packages.
Note
Installation isn’t required to use the CLI command
audit-agewithnpx.
To install audit-age with npm, run:
npm install audit-age --save-dev
Then, use either the CLI command audit-age or the function auditAge.
Supported runtime environments:
^14.17.0 || ^16.0.0 || >= 18.0.0.Projects must configure TypeScript to use types from the ECMAScript modules that have a // @ts-check comment:
compilerOptions.allowJs should be true.compilerOptions.maxNodeModuleJsDepth should be reasonably large, e.g. 10.compilerOptions.module should be "node16" or "nodenext".audit-ageAudits the age of installed production npm packages.
It implements the function auditAge.
Using npx in a package directory with installed dependencies:
npx audit-age
The npm package audit-age features optimal JavaScript module design. It doesn’t have a main index module, so use deep imports from the ECMAScript modules that are exported via the package.json field exports:
3.0.0
^14.17.0 || ^16.0.0 || >= 18.0.0.node: URL scheme for Node.js builtin module imports.fs to node:fs/promises.jsconfig.json:
compilerOptions.maxNodeModuleJsDepth to 10.compilerOptions.module to nodenext.actions/checkout to v3.actions/setup-node to v3.bin field.Record types with index signatures.snapshot import to assertSnapshot in tests.FAQs
A Node.js CLI and equivalent JS API to audit the age of installed production npm packages.
The npm package audit-age receives a total of 5 weekly downloads. As such, audit-age popularity was classified as not popular.
We found that audit-age demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Company News
Socket is joining TC54 to help develop standards for software supply chain security, contributing to the evolution of SBOMs, CycloneDX, and Package URL specifications.
Security News
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
Research
Security News
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.